Sebastiano Lanzarotto

**Name of the Vulnerable Software and Affected Versions** NOKIA NFM-T version R19.9 **Description** An issue exists in the VM Manager WebUI under the endpoint "/cgi-bin/R19.9/viewlog.pl" via the `logfile` parameter, allowing a remote authenticated attacker to read arbitrary files due to an Absolute Path Traversal vulnerability. **Recommendations** For NOKIA NFM-T version R19.9, consider disabling access to the "/cgi-bin/R19.9/viewlog.pl" endpoint or restricting the `logfile` parameter to prevent exploitation until a patch is available.

**Name of the Vulnerable Software and Affected Versions** NOKIA NFM-T version R19.9 **Description** An issue was discovered in the Network Element Manager, where multiple Reflected XSS vulnerabilities exist. These vulnerabilities can be exploited via any parameter to `log.pl`, the `bench` or `pid` parameter to `top.pl`, or the `id` parameter to `easy1350.pl`. **Recommendations** For NOKIA NFM-T version R19.9, consider disabling access to the vulnerable scripts `log.pl`, `top.pl`, and `easy1350.pl` until a patch is available. Restrict input parameters `bench`, `pid`, and `id` in the respective scripts to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NOKIA AMS version 9.7.05 **Description** An issue exists in the debugger of the `ipAddress` variable, allowing Remote Code Execution. A remote user, authenticated to the AMS server, could inject code in the PING function. The privileges of the command executed depend on the user that runs the service. **Recommendations** For NOKIA AMS version 9.7.05, consider disabling the debugger of the `ipAddress` variable as a temporary workaround to minimize the risk of exploitation. Restrict access to the PING function to prevent code injection. At the moment, there is no information about a newer version that contains a fix for this vulnerability.